漏洞信息详情
MS IE 5.01 JSObject的Cross-Frame漏洞
- CNNVD编号:CNNVD-200004-045
- 危害等级: 低危
![图片[1]-MS IE 5.01 JSObject的Cross-Frame漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-04-24/fa6998ac850c38cb90c47a02e5a8652c.png)
- CVE编号:
CVE-2000-0266
- 漏洞类型:
访问验证错误
- 发布时间:
2000-04-18
- 威胁类型:
远程
- 更新时间:
2005-10-20
- 厂 商:
microsoft - 漏洞来源:
Posted to Bugtraq … -
漏洞简介
Internet Explorer 5.01存在漏洞,远程攻击者可以通过与Java JSObject共同作用的恶意程序修改DOM属性,对任意Javascript UR设置IFRAME,从而绕过cross frame安全策略。
漏洞公告
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.
参考网址
来源: BID
名称: 1121
链接:http://www.securityfocus.com/bid/1121
来源: BUGTRAQ
名称: 20000418 IE 5 security vulnerablity – circumventing Cross-frame security policy using Java/JavaScript (and disabling Active Scripting is not that easy)
链接:http://www.securityfocus.com/templates/archive.pike?list=1&msg=38FC6130.D6D178FD@nat.bg
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
